DES MOINES, Iowa — Nearly 6,700 people may have had their personal information exposed in a January cyberattack against Des Moines Public Schools, the district said Monday.
The news comes months after DMPS detected "unusual activity" on its network, prompting the district to take its internet and network services offline. Classes were canceled for two days as a result of the breach.
Following the cyberattack, the district launched an investigation into the incident with the help of third-party forensic specialists.
"While the investigation is ongoing, it has now been determined that some data was exposed during the attack," a press release states.
Despite the breach, DMPS claims there is no evidence of financial fraud or identity theft.
Those affected by the data breach will receive a letter from the district this week noting the type of data that may have been exposed.
The district plans to offer complimentary credit monitoring services to everyone affected by the incident.
Moving forward, the district is taking immediate steps to improve data security and implement technical safeguards.
“We want to express our deepest gratitude to everyone for their patience and understanding as we address this unfortunate incident,” said Matt Smith, interim superintendent of DMPS, in a statement. “Data breaches have become all too common for public agencies and private businesses alike, and we recognize the impact they can have on individuals.”